CPView Utility is a text based built-in utility that can be run ('cpview' command) on Security Gateway / Security Management Server / Multi-Domain Security Management Server.
CPView Utility shows statistical data that contain both general system information (CPU, Memory, Disk space) and information for different Software Blades (only on Security Gateway).
The data is continuously updated in easy to access views.
On Security Gateway, this statistical data can be used to monitor machine's performance.
When the cpview command is executed several times in parallel (for example when 2 or more administrators are running it in parallel), data inconsistency may occur. Example: data is zeroed every few seconds.
Security Gateway
History Mode is not supported in R77 GA (feature was added only in R77.10).
History Mode is not supported in R76SP.50 (GA Take 84).
VSX Gateway
When running the "cpview" command in Gaia Clish, the CPView shows only partial data in VSX contexts other than VS0 (the VSX Gateway).
To see all data for a VSX context in the CPView:
Connect to the command line on the VSX Gateway.
Log in to the Expert mode.
Go to the VSX context: vsenv <VS ID>
Run the CPView: cpview
R80.30 and lower versions:
The History Mode is not fully supported - only the information from the context of VSX machine itself (VS0) is recorded.
R77.20 and lower versions:
"SysInfo" view always shows "Platform Gaia 32Bit", even when running 64-bit kernel (issue was resolved in R77.30).
Security Management Server (does not apply to StandAlone)
The "Top Protocols" shows "TCP:1024" as a high use protocol/service
This is by design. TCP:1024 represents all TCP high ports - TCP ports above 1024.
Gaia Embedded OS
1800 / 1600 / 1400 / 1200R/ 1100 / 700 / 600 / Series-80 appliances are not supported.
X-Series XOS
X-Series appliances are not supported.
CPView History file that was collected on another machine
The time presented in the CPview history is according to the time/timezone of the target machine, on which you open the CPview history file. If you need to see the exact timestamps of the source machine, then before loading the source CPView history data, change the timezone on your target machine to match the timezone of the source machine.
Screen colors in SSH Client
Some SSH clients support the customizations of the screen colors. Because CPView uses escape characters to create graphic effects, you should not change the screen colors in your SSH client.
The throughput data is obtained directly from the hardware. The total throughput is a sum of all throughput counters in each path (Fast Path, Medium Path, and Slow Path).
Gaia Portal - Overview pane - widget Throughput
The throughput data is a sum of both Incoming and Outgoing traffic (sum of the RX packets and TX packets from /proc/net/dev). Packets are counted form all interfaces. If a packet passes through Slow Path (F2F), it will be counted twice.
New views in CPView for more accurate and detailed analysis on a Security Gateway:
Top protocols by throughput (Network -> Top-Protocols)
Top connections by throughput (Network -> Top-Connections)
Top protocols by CPU (I/S -> CPU -> Top-Protocols)
Top connections by CPU (I/S -> CPU -> Top-Connections) Note: The mode of the Firewall Priority Queues on Security Gateway should be set to "1" (CPU Connections Statistics) - refer to sk105762 - section "(IV-B) Monitoring - Evaluation of Heavy Connections"
Software-blades package updates information (Software-blades -> Overview) - displays information on last update time and package number for IPS, Anti-Virus, Anti-Bot, and Application Control blades.
Note - In a Global Domain of a Multi-Domain Security Management Server, the "Log-Rates" and "Indexer-Rates" tabs show an aggregation of the rates from other Domains. The "Exporter-Rates" tab shows the data for the Global Domain only.
Advanced > Logging > Log-Rates
Metric
Type
Refresh Rate
Comment
Log Receive Rate (Log Rate)
Number
10 seconds
Average log rate received by a Log Server.
Log Receive Rate Last 10 Minutes
Number
10 minutes
Average log rate received by a Log Server during the last 10 minutes.
Log Receive Rate 1 Hour
Number
1 hour
Average log rate received by a Log Server during the last 1 hour.
Log Receive Rate Peak (Since last restart)
Number
10 seconds
Peak average log rate received by a Log Server since the last start of Check Point services.
Advanced > Logging > Indexer-Rates
Metric
Type
Refresh Rate
Comment
Log Reading Rate
Number
10 seconds
Average number of received logs by an Indexer per second.
Log Indexing Rate
Number
10 seconds
Average number of indexed logs by an Indexer per second.
Advanced > Logging > Exporter-Rates
Metric
Type
Refresh Rate
Comment
Name
Text
10 seconds
Name of a configured Log Exporter instance
Log Exporting Rate
Number
10 seconds
Average number of exported logs
Output on a Security Gateway
Advanced > Logging > Log-Rates
Metric
Type
Refresh Rate
Comment
Generated Log Rate
Number
10 seconds
Average number of logs being generated by this Security Gateway / Cluster Member per second.
Local Logging Rate
Number
10 seconds
Average number of logs being saved locally by this Security Gateway / Cluster Member per second.
IP
Text
10 seconds
IP address of a Log Server, to which this Security Gateway / Cluster Member sends its logs.
Log Sending Rate
Number
10 seconds
Average number of logs this Security Gateway / Cluster Member sends to its Log Server per second.